Cisco has released a security advisory addressing multiple vulnerabilities in Cisco Unified Communications Manager (CUCM). CUCM is the call processing component of the Cisco IP Telephony solution that extends enterprise telephony features and functions to packet telephony network devices such as IP phones, media processing devices, VoIP gateways, and multimedia applications. To exploit these vulnerabilities, an attacker would send malformed packets to an affected device. If successfully exploited, an unauthenticated, remote attacker would execute arbitrary code or cause a denial-of-service condition.
<br><br>
At this time, there are known exploits associated with these vulnerabilities; USCYBERCOM is not aware of any DoD related incidents. |